3 min read

The Spam Omelette #44

Bogdan BOTEZATU

October 01, 2009

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
The Spam Omelette #44

Week
in review: September 23 – 30

Spam map 44

1.
PLEASE
don’t go to college!

Ranking first in this week’s issue of the Spam Omelette, the
word PLEASE has been detected in
multiple spam waves advertising miscellaneous products – from the “regular”
Canadian Pharmacy pills to quick and dirty get-rich schemes or even academic
degrees.

Although Canadian Pharmacy spam messages abusing the word PLEASE are still flowing, we’ll focus
on a different type of unsolicited mail, namely the diploma spam samples
collected by BitDefender via its network of honeypots.

Please spam

Diploma spam is hardly new around  the block: The user is basically asked to pay
a fee in exchange of a sheet of paper stating that the victim has graduated an
obscure (and most of the times unrecognized) learning institution. However,
this specific spam wave is highly targeted – it includes the recipient’s first
name, which means that spammers behind this business have access to a database
of persons and their associated e-mail addresses (probably purchased on the
black market or even compiled to include users subscribed to miscellaneous
services). Once again, pay extra attention when you are required to sign up for
using a free service!

2. Canadian
Pharmacy disguised as WebMD

Ranking second in this week’s spam top, the word WebMD 
has been detected in messages advertising sexual enhancements from
infamous online webshop Canadian Pharmacy. These messages impersonate a legit
newsletter allegedly signed by WebMD, the online resource on healthcare news.
The newsletter has been partly modified to include a central picture of
Canadian Pharmacy offers. This type of messages are mostly sent by the Tedroo Trojan horse, a spam-sending bot.

Canadian Pharmacy webmd

3. CLICK
here. We’ll take care of the rest!

The word CLICK has been detected in multiple spam waves
related to world’s top spammer, the Canadian Pharmacy. Disguised as a sales
confirmation from Walmart, the message features a central image with the
Canadian Pharmacy offering. The spam message also contains a link to
unsubscribe, but clicking it would only take the victim to the webpage-version
of the newsletter.

Click spam

4. TAX
scams lurking in the dark

The 15th of September is usually the day when
United States citizens file the tax return papers for the previous year. Just
like any important event, the tax return day did not go unnoticed for spammers,
who started a malware attack using links to ZBOT infected binary files.

Tax Return Fraud scam

The message allegedly sent by the Internal Revenue Service
asks the victim to review their tax statement by following an embedded link.
However, when clicking the link, the user would actually start downloading an
executable file infected with Zbot, an extremely dangerous piece of malware
with rootkit capabilities. For more information about IRS-related scams, please
visit this
resource
.

5. UNSUBSCRIBE
me from spam newsletters

Ranking last in this week’s
issue of the Spam Omelette, the word UNSUBSCRIBE has been detected in
unsolicited mail also coming from Canadian Pharmacy. The message allegedly
allows the user to unsubscribe from the mailing list, but clicking any of the
unsubscribe links would only take the user to a Chinese web domain advertising
sexual enhancements from Canadian Pharmacy.

UNSUBSCRIBE me from spam newsletters

tags


Author



Right now

Top posts

The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read
Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

October 22, 2021

2 min read
Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

October 20, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

How to keep your Android device immune to malicious vaccine themed apps How to keep your Android device immune to malicious vaccine themed apps
Cristina POPOV

April 22, 2021

2 min read
Facebook Takes Down Two Hacking Groups Operating out of Palestine Facebook Takes Down Two Hacking Groups Operating out of Palestine
Silviu STAHIE

April 22, 2021

2 min read
Ransomware attack causes supermarket cheese shortage in the Netherlands Ransomware attack causes supermarket cheese shortage in the Netherlands
Graham CLULEY

April 13, 2021

2 min read